Lucene search
WpvulndbWPVDB-ID:BB4146BF-4305-47BF-B16B-2253D11203AEHistoryAug 30, 2023 - 12:00 a.m.
Slimstat Analytics < 5.0.10 - Contributor+ Stored XSS
2023-08-3000:00:00
wpscan.com
4
plugin
validation
shortcode
contributor
xss
attack
Description The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks
| CPE | Name | Operator | Version |
|---|---|---|---|
| eq | 5.0.10 |
Related
cve
cve
CVE-2023-4597
2023-08-30 02:15:09
openvas
openvas
WordPress Slimstat Analytics Plugin < 5.0.10 XSS Vulnerability
2023-08-31 00:00:00
cvelist
cvelist
CVE-2023-4597
2023-08-30 01:45:36
nvd
nvd
CVE-2023-4597
2023-08-30 02:15:09
prion
prion
Cross site scripting
2023-08-30 02:15:00
osv
osv
CVE-2023-4597
2023-08-30 02:15:09
packetstorm
packetstorm
WordPress Slimstat Analytics 5.0.9 Cross Site Scripting / SQL Injection
2023-09-11 00:00:00
wordfence
wordfence
zdt
zdt
5.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.4%
Related for WPVDB-ID:BB4146BF-4305-47BF-B16B-2253D11203AE